"After computer theft, data at risk for 16,800 patients in Fairview, North Memorial health systems"
Pioneer Press
By:Christopher Snowbeck
9/27/11
At two hospital systems in the Twin Cities, a laptop computer was stolen, containing private information, such as social security numbers of over 16,000 patients. The Minneapolis-based Fairview system sent letters to nearly 14,000 patients.The Robbinsdale-based North Memorial also sent out 2,800 letters to patients. They confirmed that a laptop lacking the necessary privacy protections was stolen from a car in July. There was no evidence that any patient information has been accessed or misused. The theft happened in a Minneapolis restaurant.The owner of the laptop is an employee of Accretive Health. He is a Chicago-based Consulting firm that is working with both health systems.
"There is a password associated with accessing that particular device," said Lois Dahl, information privacy director for Fairview. "They assured us they have strong passwords, which means it's not something easy to get. Someone would have to use technical measures beyond the average person in order to get at the data on the device." In order for someone to get into the laptop or access anyones' file, they have to enter a password. They have policies and procedures that require all laptops with patient information to be fully encrypted. But because of human error, the missing laptop was not encrypted, meaning the files are potentially at risk of being accessed.
WOW this is horrible! If i was one of those patients i would sue the company or something. Or at least fire the guy who didn't encrypt the laptop. The fact that its over 16,000 peoples files at risk is amazing. I think that also they shouldn't be keeping this important laptop in a car. It should be locked up or kept somewhere safe at work. If you look more into the article it says that a fine for breaking federal privacy laws can get up to $1.5 million!
http://www.twincities.com/ci_18991391
No comments:
Post a Comment